The quantum computing reality is drawing nearer — Y2Q, Quantum Day, Q-Day — when quantum computers will be able to break the public-key cryptography that currently safeguards most of the internet and the critical applications we rely on. As a result, it is becoming increasingly urgent for organizations to initiate their quantum-safe planning and migration efforts now, to ensure the continued integrity of their cybersecurity defences.
The Global Risk Institute publishes an annual Quantum Threat Timeline Report that provides best estimates for the arrival of a Cryptographically Relevant Quantum Computer (CRQC), a computer that can run quantum algorithms to crack today’s (classical) cryptography. Specifically, the report estimates the likelihood, at different points over the next thirty years, of a quantum computer emerging able to break the RSA-2048 cryptosystem within 24 hours. Among the report’s conclusions is that there is a substantial likelihood this could happen within the next 10 years. They state, "The risk aversion/appetite of companies and institutions can vary significantly, but for critical systems, such estimated likelihoods represent a serious concern." This report is a must-read for organizations’ risk management teams.
Researchers at IBM caution that Q-Day is sooner than we think, stating, "The rapid advancements and the merging of hybrid quantum-classical computing, artificial intelligence (AI), machine learning (ML), and deep learning (DL) pose a potentially unseen and significant threat to encryption that may impact post-quantum cryptography (PQC) transition timelines." Read the manuscript, Advancements in Quantum Computing and AI May Impact PQC Migration Timelines, for more information.
Performing a quantum-safe migration is required for securing your organization in the future. Yet, preparing for Q-Day and beyond doesn’t need to be overwhelming, especially if organizations start acting now. Starting migration planning now is essential to ensuring it goes as smoothly as possible. Conversely, delaying your migration will likely cause you a lot of headaches, and a lot of unnecessary costs, down the road. History tells us that any type of IT modernization is time-intensive and requires careful planning — consider Zero Trust or Y2K. Start your quantum-safe migration now to avoid these 4 pitfalls:
Best Practices for Optimal Organizational Roadmap Alignment
A strategic, long-term migration plan allows organizations to gain efficiencies by aligning their quantum-safe efforts with other technological or business-related roadmap plans. Here are 3 best practices:
For further insights and discussions on starting your quantum-safe migration, consider exploring the following ISARA blogs:
Starting your quantum-safe migration planning now is not just a precaution; it's a strategic imperative. The potential risks and costs associated with delayed or rushed migrations far outweigh the efforts required to begin planning today.
We at ISARA can help your organization navigate this cryptographic migration smoothly and maintain a competitive edge in the quantum computing era. Whether you’re just starting, not yet begun, or well on your journey, we can help — reach out anytime!